Required CVE Record Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in Turbo Traffic Trader C (TTT-C) 1.0 allow remote attackers to inject arbitrary HTML or web script, as demonstrated via (1) the link parameter to ttt-out, (2) the X-Forwarded-For header in a GET request to ttt-in, (3) the Referer header in a GET request to ttt-in, or the (4) site name or (5) site URL fields in the main control panel.
References 11 Total
- securityfocus.com: 10359 vdb-entry
- secunia.com: 11623 third-party-advisory
- marc.info: 20040517 Multiple TTT-C XSS vulnerabilities mailing-list
- osvdb.org: 6340 vdb-entry
- osvdb.org: 6341 vdb-entry
- osvdb.org: 6342 vdb-entry
- exchange.xforce.ibmcloud.com: turbotraffictraderc-multiple-xss(16164) vdb-entry
- osvdb.org: 6344 vdb-entry
- osvdb.org: 6339 vdb-entry
- http://www.icefire.org/security/ttt-bugreport.txt
- osvdb.org: 6343 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 11 Total
- securityfocus.com: 10359 vdb-entryx_transferred
- secunia.com: 11623 third-party-advisoryx_transferred
- marc.info: 20040517 Multiple TTT-C XSS vulnerabilities mailing-listx_transferred
- osvdb.org: 6340 vdb-entryx_transferred
- osvdb.org: 6341 vdb-entryx_transferred
- osvdb.org: 6342 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: turbotraffictraderc-multiple-xss(16164) vdb-entryx_transferred
- osvdb.org: 6344 vdb-entryx_transferred
- osvdb.org: 6339 vdb-entryx_transferred
- http://www.icefire.org/security/ttt-bugreport.txt x_transferred
- osvdb.org: 6343 vdb-entryx_transferred